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Lll: Entry 6 of 12 



File: USPT 



Dec 21, 1999 



DOCUMENT- IDENTIFIER: US 6005863 A 

TITLE: Frame switch with serial data processing 

Detailed Description Text (6) : 

Upon loading the destination address into the destination address register 408, the 
port controller 12 6 of the source port requests the global traffic manager 134 to 
open the communication path from the input data path 12 0 of the source port to the 
output data path 109 of the destination port. If the destination address indicates 
a broadcast or multicast request, the destination ports will be all ports of the 
frame switch except the source port. If the destination address is a unicast 
address, the global traffic manager 134 asks the lookup engine 132 to map the 
destination address into a destination port number. The global traffic manager 134 
stores all activity status information for each port. Upon receiving the 
destination port number from the lookup engine 132, the global traffic manager 134 
checks the activity status of the destination port to determine whether to open the 
communication path in the switch fabric 108, or to signal the port controller 126 
that a congestion condition has occurred. Switch fabric 108 is the actual switching 
matrix that connects the input data path 12 0 of the source port to the out data 
path 109 of the destination ports. 
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L4: Entry 2 of 24 



File: USPT 



Apr 9, 2002 



DOCUMENT- IDENTIFIER: US 63 70146 Bl 

TITLE: Method and apparatus for non- disruptive addition of a new node to an inter- 
nodal network 

Detailed Description Text (29) : 

The new node 6d will wait in the state 108 until it receives configuration 
information from the host 4. Before the host provides such information, however, it 
is preferred that the new node 6d is checked to ascertain that both of its I/O 
ports are open, that its transmitters are disabled in hardware, (this is so that 
the node cannot begin transmitting onto the network until it is desired that it do 
so), and that the diagnostic checks have been successful. Now, the configuration 
messages may be sent by the host 4 as indicated by block 110 in FIG. 8. These 
configuration messages will preferably include the following elements: a logical 
network identification, as there may be more than one network in the system 2, an 
indication that the new node is configured for the transmit mode (which becomes 
effective only after subsequent authorization as described hereinafter) , and the 
number of packets, such as the packets described with reference to FIG. 4, it will 
use. Once this configuration information is obtained, the new node will 
automatically transition to the WAIT FOR ADDITION state 112 in which it will wait 
and do nothing until a special message is received from the host 4, which message 
is MSG: ADD NODE 114. 
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Lll: Entry 4 of 12 



File: USPT 



Sep 18, 2001 



DOCUMENT- IDENTIFIER: US 6292900 Bl 

TITLE: Multilevel security attribute passing methods, apparatuses, and computer 
program products in a stream 

Detailed Description Text (11) : 

FIG. 6 shows a method according to the present invention to determine whether a 
requested port is available for communication between data processing nodes. In 
particular, an incoming packet 86i is shown intercepted 110 by a destination 
system's operating system. Security examination is performed at the data link and 
network levels of the kernel interface operating system interface 66. The IP header 
element 112 of packet 86i' is examined and the port number and the security label 
subelement 114 are identified. The kernel checks to determine if the requested port 
number is already open 116. If not, the requested port is opened 118 at the 
security level indicated by the security label. Activities for opening a port at a 
particular security level are logged 122 to provide a journal or history of the 
activity and to provide a database or security levels which are presently open for 
particular port numbers. A decision is made 120 'whether to pass the packet to a 
local application. If all other protocol requirements have been satisfied, the data 
is passed to the applications process 86" for handling and completion. If all other 
protocol requirements have not been satisfied, the packet is dropped 108. If a 
registered port number requested is already open 116, the operating system kernel 
determines 124 whether each opened port is at the security level specified by the 
port identifier's security label. If not, then a new port having the same number as 
the existing port is opened 118 at the identified security level. The opening of 
the port is logged 122 to journal the activity, as described above. If the existing 
open port is at the same security level as identified in the port identifier 
subelement, then it is determined 126 whether the port is in use. If the port is 
presently in use, then a mandatory access control protocol precludes opening 
another port at the same number and security level being opened. Consequently, a 
packet is either buffered 128 and checked periodically until a pre-defined time-out 
130 occurs, causing packet process termination or the packet is terminated 108 
immediately, or until the port becomes unused 124, 125. If an open port is set to a 
correct security level but not currently in use 126, then the port activity is 
logged and a decision is made 120 whether or not to pass the packet. If all other 
security criteria is met, the packet is forwarded for application processing. 
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